mirror/Anthias
1
0
Fork 0
mirror of https://github.com/Screenly/Anthias.git synced 2026-06-13 10:44:18 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
eceba4046782b79f81189f9c19e02139384a3620
Anthias/settings.py
Viktor Petersson eceba40467 refactor(messaging): replace ZMQ reply bus with Redis BLPOP + correlation IDs 
Drops the second ZMQ leg — the viewer→server reply path — in favor of
Redis BLPOP keyed by a UUID correlation ID. Same channel layer that PR1
moved the command bus onto, so the entire viewer messaging path now
runs on Redis.

Wire format extends the existing 'command&parameter' encoding: the
'current_asset_id' command (currently the only request-reply command)
now carries the correlation ID in the parameter slot, and the viewer
LPUSHes its JSON reply onto 'anthias.reply.<corr-id>' (with a 30s
EXPIRE so unread replies don't accumulate). The server BLPOPs that key.

This also fixes a latent correctness bug: ZmqCollector had no
correlation, so concurrent /v1 ViewerCurrentAsset callers could
mismatch replies. That hazard was masked today by uvicorn running
single-worker; with Redis + correlation IDs, the reply path is now safe
across concurrent callers.

- settings.ZmqConsumer / ZmqCollector → settings.ReplySender /
  ReplyCollector (BLPOP). 'import zmq' drops out — pyzmq itself is
  removed in the next commit.
- lib.errors.ZmqCollectorTimeoutError → ReplyTimeoutError (the only
  catch site is implicit — it bubbles to a 500 — so the rename is
  mechanical).
- viewer/__init__.py: send_current_asset_id_to_server takes a
  correlation ID and uses ReplySender. The 'current_asset_id' command
  handler in the dispatch table threads the parameter (now the corr ID)
  into the function call.
- api/views/v1.py ViewerCurrentAssetViewV1: generates a UUID, sends it
  with the command, BLPOPs on it.
- api/tests/test_v1_endpoints.py: ZmqCollector mock → ReplyCollector;
  side_effect signature relaxed to '*_' since recv_json now takes two
  positional args (corr, timeout_ms).
- stubs/redis-stubs/client.pyi: add rpush() and blpop() narrowed to
  decode_responses=True return shapes (the rest of the stub follows the
  same convention).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-27 17:05:43 +00:00

293 lines
9.9 KiB
Python
Raw Blame History

#!/usr/bin/env python
# -*- coding: utf-8 -*-
import configparser
import json
import logging
from collections import UserDict
from os import getenv, path
from typing import TYPE_CHECKING, Any, ClassVar
from lib.auth import (
Auth,
BasicAuth,
NoAuth,
_is_legacy_sha256,
)
from lib.errors import ReplyTimeoutError
if TYPE_CHECKING:
import redis
VIEWER_CHANNEL = 'anthias.viewer'
REPLY_KEY_PREFIX = 'anthias.reply.'
CONFIG_DIR = '.anthias/'
CONFIG_FILE = 'anthias.conf'
DEFAULTS = {
'main': {
'analytics_opt_out': False,
'assetdir': 'anthias_assets',
'database': CONFIG_DIR + 'anthias.db',
'date_format': 'mm/dd/yyyy',
'use_24_hour_clock': False,
'use_ssl': False,
'auth_backend': '',
'django_secret_key': '',
},
'viewer': {
'audio_output': 'hdmi',
'debug_logging': False,
'default_duration': 10,
'default_streaming_duration': '300',
'player_name': '',
'resolution': '1920x1080',
'show_splash': True,
'shuffle_playlist': False,
'verify_ssl': True,
'default_assets': False,
},
}
CONFIGURABLE_SETTINGS = DEFAULTS['viewer'].copy()
CONFIGURABLE_SETTINGS['use_24_hour_clock'] = DEFAULTS['main'][
'use_24_hour_clock'
]
CONFIGURABLE_SETTINGS['date_format'] = DEFAULTS['main']['date_format']
PORT = int(getenv('PORT', 8080))
LISTEN = getenv('LISTEN', '127.0.0.1')
# Initiate logging
logging.basicConfig(
level=logging.INFO, format='%(message)s', datefmt='%a, %d %b %Y %H:%M:%S'
)
# Silence urllib info messages ('Starting new HTTP connection')
# that are triggered by the remote url availability check in view_web
requests_log = logging.getLogger('requests')
requests_log.setLevel(logging.WARNING)
logging.debug('Starting viewer')
class AnthiasSettings(UserDict[str, Any]):
"""Anthias' Settings."""
def __init__(self, *args: Any, **kwargs: Any) -> None:
UserDict.__init__(self, *args, **kwargs)
home = getenv('HOME')
if not home:
# Without HOME, all config/state paths (config file, DB,
# asset dir) would silently resolve relative to the cwd.
# Fail loudly instead of writing to unexpected locations.
raise EnvironmentError(
'HOME environment variable must be set for AnthiasSettings.'
)
self.home = home
self.conf_file = self.get_configfile()
self.auth_backends_list: list[Auth] = [NoAuth(), BasicAuth(self)]
self.auth_backends: dict[str, Auth] = {}
# Set by _get() when an insecure password was wiped during load();
# __init__ persists the cleaned state to disk so the warning isn't
# repeated on every subsequent load.
self._needs_save_after_load = False
for backend in self.auth_backends_list:
DEFAULTS.update(backend.config)
self.auth_backends[backend.name] = backend
if not path.isfile(self.conf_file):
logging.error(
'Config-file %s missing. Using defaults.', self.conf_file
)
self.use_defaults()
self.save()
else:
self.load()
if self._needs_save_after_load:
self._needs_save_after_load = False
self.save()
def _get(
self,
config: configparser.ConfigParser,
section: str,
field: str,
default: Any,
) -> None:
try:
if isinstance(default, bool):
self[field] = config.getboolean(section, field)
elif isinstance(default, int):
self[field] = config.getint(section, field)
else:
self[field] = config.get(section, field)
if field == 'password' and self[field] != '':
# Both legacy SHA256 hashes and any non-Django-format
# value (incl. plaintext) are unsafe to keep — they
# cannot be verified by the new PBKDF2-based path. Clear
# the password and disable basic auth so the device
# stays reachable; the operator must re-set credentials
# via the UI.
#
# Note: we deliberately do NOT call hash_password() here.
# `settings.py` is imported (and AnthiasSettings()
# instantiated) before django.setup() runs in the viewer
# process, so calling Django's password hashers would
# raise ImproperlyConfigured at startup.
if (
_is_legacy_sha256(self[field])
or '$' not in self[field]
):
reason = (
'legacy SHA256 hash'
if _is_legacy_sha256(self[field])
else 'unrecognized format (possibly plaintext)'
)
logging.error(
'Insecure password (%s) detected in %s; '
'clearing it and disabling basic auth. The '
'device will accept unauthenticated requests '
'until you re-set the password via the web UI.',
reason,
self.conf_file,
)
self[field] = ''
self['auth_backend'] = ''
self._needs_save_after_load = True
except configparser.Error as e:
logging.debug(
"Could not parse setting '%s.%s': %s. "
"Using default value: '%s'.",
section,
field,
str(e),
default,
)
self[field] = default
if field in ['database', 'assetdir']:
self[field] = str(path.join(self.home, self[field]))
def _set(
self,
config: configparser.ConfigParser,
section: str,
field: str,
default: Any,
) -> None:
if isinstance(default, bool):
config.set(
section, field, self.get(field, default) and 'on' or 'off'
)
else:
config.set(section, field, str(self.get(field, default)))
def load(self) -> None:
"""Loads the latest settings from anthias.conf into memory."""
logging.debug('Reading config-file...')
config = configparser.ConfigParser()
config.read(self.conf_file)
for section, defaults in list(DEFAULTS.items()):
for field, default in list(defaults.items()):
self._get(config, section, field, default)
def use_defaults(self) -> None:
for defaults in list(DEFAULTS.items()):
for field, default in list(defaults[1].items()):
self[field] = default
def save(self) -> None:
# Write new settings to disk.
config = configparser.ConfigParser()
for section, defaults in list(DEFAULTS.items()):
config.add_section(section)
for field, default in list(defaults.items()):
self._set(config, section, field, default)
with open(self.conf_file, 'w') as f:
config.write(f)
self.load()
def get_configdir(self) -> str:
return path.join(self.home, CONFIG_DIR)
def get_configfile(self) -> str:
return path.join(self.home, CONFIG_DIR, CONFIG_FILE)
@property
def auth(self) -> Auth | None:
backend_name = self['auth_backend']
if backend_name in self.auth_backends:
return self.auth_backends[self['auth_backend']]
return None
settings = AnthiasSettings()
class ViewerPublisher:
INSTANCE: ClassVar['ViewerPublisher | None'] = None
def __init__(self) -> None:
if self.INSTANCE is not None:
raise ValueError('An instance already exists!')
from lib.utils import connect_to_redis
self._redis: 'redis.Redis' = connect_to_redis()
@classmethod
def get_instance(cls) -> 'ViewerPublisher':
if cls.INSTANCE is None:
cls.INSTANCE = ViewerPublisher()
return cls.INSTANCE
def send_to_viewer(self, msg: str) -> None:
self._redis.publish(VIEWER_CHANNEL, 'viewer {}'.format(msg))
class ReplySender:
"""Push a JSON reply onto a per-correlation-ID list. Used by the viewer
to answer request-reply commands like ``current_asset_id``.
The list expires after 30s so unread replies (e.g. server timed out
before the viewer answered) don't accumulate in Redis.
"""
def __init__(self) -> None:
from lib.utils import connect_to_redis
self._redis: 'redis.Redis' = connect_to_redis()
def send(self, correlation_id: str, msg: Any) -> None:
key = f'{REPLY_KEY_PREFIX}{correlation_id}'
self._redis.rpush(key, json.dumps(msg))
self._redis.expire(key, 30)
class ReplyCollector:
INSTANCE: ClassVar['ReplyCollector | None'] = None
def __init__(self) -> None:
if self.INSTANCE is not None:
raise ValueError('An instance already exists!')
from lib.utils import connect_to_redis
self._redis: 'redis.Redis' = connect_to_redis()
@classmethod
def get_instance(cls) -> 'ReplyCollector':
if cls.INSTANCE is None:
cls.INSTANCE = ReplyCollector()
return cls.INSTANCE
def recv_json(self, correlation_id: str, timeout_ms: int) -> Any:
# BLPOP takes whole seconds; round up so the caller never waits
# less than requested. Floor at 1 — timeout=0 would block forever.
timeout_seconds = max(1, (timeout_ms + 999) // 1000)
key = f'{REPLY_KEY_PREFIX}{correlation_id}'
result = self._redis.blpop(key, timeout=timeout_seconds)
if result is None:
raise ReplyTimeoutError
return json.loads(result[1])
Reference in New Issue View Git Blame Copy Permalink